1 |
salut, |
2 |
|
3 |
j'ai installé vsftp, et je n'arrive pas à le faire marcher. |
4 |
A chaque tentative de connexion , à la seconde ou j'essaie de connecter |
5 |
voilà ce que j'ai : |
6 |
|
7 |
ncftp>open -u 192.168.0.157 |
8 |
Username at 192.168.0.157: ***** |
9 |
Remote host has closed the |
10 |
connection. |
11 |
Sleeping 20 seconds... |
12 |
|
13 |
Par contre |
14 |
open localhost |
15 |
--> ca ca marche nickel. |
16 |
|
17 |
Le cas "closed the connection" je l'ai si j'essaie depuis un autre PC |
18 |
sur le LAN, ou sur le PC qui héberge vsftp lui même, ou en login |
19 |
anonyme. |
20 |
Notez qu'en login avec username : j'ai même pas le temps de sisir mon |
21 |
mot de passe ! |
22 |
|
23 |
J'ai regardé vsftpd.conf il m'a l'air correct, |
24 |
Le fichier de log /var/log/vsftpd/vsftpd.log ne dit RIEN sur les |
25 |
tentatives foireuses, par contre trace les login "localhost" |
26 |
correctement. |
27 |
|
28 |
J'ai bien autorisé les ports qu'il faut sur mon routeur, d'ailleurs ca |
29 |
fonctionnait très bien avec le vsftpd livré avec la redhat 9 que j'ai |
30 |
testé avant. |
31 |
|
32 |
Si qqun a une idée... je joins mes fihciers de conf : |
33 |
|
34 |
#vsftpd.conf |
35 |
# $Header: /home/cvsroot/gentoo-x86/net-ftp/vsftpd/files/vsftpd.conf,v |
36 |
1.2 2002/05/04 03:42:50 woodchip Exp $ |
37 |
|
38 |
# Allow anonymous FTP? |
39 |
#anonymous_enable=YES |
40 |
|
41 |
# Uncomment this to allow local users to log in. |
42 |
local_enable=YES |
43 |
|
44 |
# Uncomment this to enable any form of FTP write command. |
45 |
write_enable=YES |
46 |
|
47 |
# Default umask for local users is 077. You may wish to change this to |
48 |
022, |
49 |
# if your users expect that (022 is used by most other ftpd's) |
50 |
local_umask=022 |
51 |
|
52 |
# Uncomment this to allow the anonymous FTP user to upload files. This |
53 |
only |
54 |
# has an effect if the above global write enable is activated. Also, you |
55 |
will |
56 |
# obviously need to create a directory writable by the FTP user. |
57 |
#anon_upload_enable=YES |
58 |
|
59 |
# Uncomment this if you want the anonymous FTP user to be able to create |
60 |
# new directories. |
61 |
#anon_mkdir_write_enable=YES |
62 |
|
63 |
# Activate directory messages - messages given to remote users when they |
64 |
# go into a certain directory. |
65 |
dirmessage_enable=YES |
66 |
|
67 |
# Make sure PORT transfer connections originate from port 20 (ftp-data). |
68 |
connect_from_port_20=YES |
69 |
|
70 |
# If you want, you can arrange for uploaded anonymous files to be owned |
71 |
by |
72 |
# a different user. Note! Using "root" for uploaded files is not |
73 |
# recommended! |
74 |
chown_uploads=YES |
75 |
chown_username=lenny |
76 |
|
77 |
# Activate logging of uploads/downloads. |
78 |
xferlog_enable=YES |
79 |
|
80 |
# If you want, you can have your log file in standard ftpd xferlog |
81 |
format |
82 |
#xferlog_std_format=YES |
83 |
|
84 |
# You may override where the log file goes if you like. The default is |
85 |
shown |
86 |
# below. |
87 |
xferlog_file=/var/log/vsftpd/vsftpd.log |
88 |
|
89 |
# You may change the default value for timing out an idle session. |
90 |
#idle_session_timeout=600 |
91 |
|
92 |
# You may change the default value for timing out a data connection. |
93 |
#data_connection_timeout=120 |
94 |
|
95 |
# It is recommended that you define on your system a unique user which |
96 |
the |
97 |
# ftp server can use as a totally isolated and unprivileged user. |
98 |
nopriv_user=ftp |
99 |
|
100 |
# Enable this and the server will recognise asynchronous ABOR requests. |
101 |
Not |
102 |
# recommended for security (the code is non-trivial). Not enabling it, |
103 |
# however, may confuse older FTP clients. |
104 |
#async_abor_enable=YES |
105 |
|
106 |
# By default the server will pretend to allow ASCII mode but in fact |
107 |
ignore |
108 |
# the request. Turn on the below options to have the server actually do |
109 |
ASCII |
110 |
# mangling on files when in ASCII mode. |
111 |
# Beware that turning on ascii_download_enable enables malicious remote |
112 |
parties |
113 |
# to consume your I/O resources, by issuing the command "SIZE /big/file" |
114 |
in |
115 |
# ASCII mode. |
116 |
# These ASCII options are split into upload and download because you may |
117 |
wish |
118 |
# to enable ASCII uploads (to prevent uploaded scripts etc. from |
119 |
breaking), |
120 |
# without the DoS risk of SIZE and ASCII downloads. ASCII mangling |
121 |
should be |
122 |
# on the client anyway.. |
123 |
#ascii_upload_enable=YES |
124 |
#ascii_download_enable=YES |
125 |
|
126 |
# You may fully customise the login banner string: |
127 |
ftpd_banner=[...Welcome to the Vault...] |
128 |
|
129 |
# You may specify a file of disallowed anonymous e-mail addresses. |
130 |
Apparently |
131 |
# useful for combatting certain DoS attacks. |
132 |
#deny_email_enable=YES |
133 |
# (default follows) |
134 |
|
135 |
|
136 |
# You may specify an explicit list of local users to chroot() to their |
137 |
home |
138 |
# directory. If chroot_local_user is YES, then this list becomes a list |
139 |
of |
140 |
# users to NOT chroot(). |
141 |
#chroot_list_enable=YES |
142 |
# (default follows) |
143 |
#chroot_list_file=/etc/vsftpd/vsftpd.chroot_list |
144 |
|
145 |
# You may activate the "-R" option to the builtin ls. This is disabled |
146 |
by |
147 |
# default to avoid remote users being able to cause excessive I/O on |
148 |
large |
149 |
# sites. However, some broken FTP clients such as "ncftp" and "mirror" |
150 |
assume |
151 |
# the presence of the "-R" option, so there is a strong case for |
152 |
enabling it. |
153 |
ls_recurse_enable=YES |
154 |
#enabling daemon mode from init.d |
155 |
background=YES |
156 |
|
157 |
|
158 |
|
159 |
|
160 |
|
161 |
|
162 |
#/etc/xinetd.d/vsftpd |
163 |
service ftp |
164 |
{ |
165 |
socket_type = stream |
166 |
wait = no |
167 |
user = root |
168 |
server = /usr/sbin/vsftpd |
169 |
server_args = /etc/vsftpd/vsftpd.conf |
170 |
log_on_success += DURATION USERID |
171 |
log_on_failure += USERID |
172 |
nice = 10 |
173 |
# disable = yes |
174 |
} |
175 |
|
176 |
|
177 |
#et le /etc/pam.d/vsftpd |
178 |
#%PAM-1.0 |
179 |
# $Header: /home/cvsroot/gentoo-x86/net-ftp/vsftpd/files/vsftpd.pam,v |
180 |
#1.3 2002/10/19 06:45:57 woodchip Exp $ |
181 |
auth required /lib/security/pam_listfile.so item=user sense=deny |
182 |
file=/etc/vsftpd/ftpusers onerr=succeed |
183 |
auth required /lib/security/pam_stack.so service=system-auth |
184 |
auth required /lib/security/pam_shells.so |
185 |
account required /lib/security/pam_stack.so service=system-auth |
186 |
session required /lib/security/pam_stack.so service=system-auth |
187 |
~ |
188 |
|
189 |
|
190 |
|
191 |
-- |
192 |
gentoo-user-fr@g.o mailing list |